$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa File: 1046CB98D28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: Kqt9mEj0giKftuB2DBO692CGsOF5kZIoQznyePkJFyk= Subject key identifier: B6:D6:91:50:23:D7:4A:6F:35:0C:34:FF:93:06:11:53:61:24:61:0F Certificate issuer: /CN=A91FDD4D/serialNumber=D50C2957DFA840A9430FB9EE25D4DCFA17129C18 Certificate serial: 0176 Authority key identifier: D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa Signing time: Tue 04 Mar 2025 16:33:19 +0000 ROA not before: Tue 04 Mar 2025 16:33:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137549 IP address blocks: 80.249.0.0/20 maxlen: 22 80.249.11.0/24 maxlen: 24 80.249.12.0/23 maxlen: 24 80.249.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D Validity Not Before: Mar 4 16:33:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c72b4e-6add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:5f:43:45:df:4a:ff:17:72:ea:d8:3c:ee: 7f:8e:b0:9e:e7:87:42:51:60:3f:38:ff:85:bf:f1: 2e:96:73:a7:a2:8c:77:53:76:ff:5a:03:51:71:3f: 12:4e:83:47:d2:4b:3a:a5:f9:20:6b:66:3f:1d:48: 40:bf:3a:08:68:f4:8f:af:c5:51:6a:ae:b5:43:d2: bf:96:9a:bf:72:ef:f7:0f:b7:13:8d:c6:78:5d:0c: 52:4a:46:7d:96:5e:24:9f:cd:cd:9c:89:43:15:4e: 91:ce:97:a6:b7:25:b3:18:a3:b0:7a:ce:0f:a4:59: 6f:8b:79:a9:30:bd:57:2b:56:ee:10:85:c4:c5:67: 47:14:44:3f:9d:5b:a5:9f:2f:46:fc:27:ae:61:c4: 86:dd:2e:46:7d:fb:72:a9:b7:41:5e:f2:e1:90:31: eb:a8:cf:39:40:8f:51:95:bf:3f:5b:b5:f5:76:41: cf:c1:38:9b:7c:6b:c6:ff:58:d5:ec:d2:ac:62:f5: 4c:0c:78:6c:97:0b:51:1b:4a:95:ec:52:d6:cc:95: 9f:1c:cc:07:b3:58:62:b1:62:ce:8c:ba:88:f4:8e: cb:dc:41:4d:77:1b:fe:c9:04:9d:b3:bf:fd:75:9a: af:28:97:de:21:d3:00:91:d4:2a:9c:84:9f:2b:36: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D6:91:50:23:D7:4A:6F:35:0C:34:FF:93:06:11:53:61:24:61:0F X509v3 Authority Key Identifier: keyid:D5:0C:29:57:DF:A8:40:A9:43:0F:B9:EE:25:D4:DC:FA:17:12:9C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1QwpV9-oQKlDD7nuJdTc-hcSnBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/1QwpV9-oQKlDD7nuJdTc-hcSnBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/660E0588D27D11ED8E9A2580C4F9AE02/1046CB98D28311EDB1655152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 80.249.0.0/20 Signature Algorithm: sha256WithRSAEncryption 1b:91:a9:53:08:e0:c9:bb:3c:cc:f9:2f:44:97:e8:d8:64:57: 2e:9b:ed:6a:12:fa:0f:ba:f9:ea:61:05:b4:ce:c3:27:e4:a1: 5f:19:0f:ce:22:e9:e8:43:34:f7:4c:0c:7e:cb:2a:e1:1c:f4: 3d:92:a1:72:80:d9:e5:aa:32:63:a6:7b:65:2f:f1:f0:d7:9e: d6:7c:91:d4:ac:83:45:e4:39:5b:80:ea:42:01:3a:a1:80:02: d4:85:48:e3:74:72:87:5d:12:6c:37:92:aa:82:b6:60:33:cd: 76:95:cf:2a:69:6f:8c:fe:ad:c1:83:d1:9d:6b:85:78:a5:33: 0d:7c:e6:c0:1a:40:61:ed:3e:59:87:d8:69:b0:ef:8d:f5:af: 7d:6b:9b:8b:5c:9e:e3:23:2a:4c:16:02:63:98:b7:27:5e:1e: 11:a3:20:8e:f8:c3:02:47:13:8c:41:af:84:3e:79:ef:64:a5: 78:a9:90:5d:d7:67:5b:7b:da:db:49:42:0f:07:4f:9b:d3:18: 6e:ff:da:1c:44:a5:46:18:3b:ea:ff:f3:3b:a6:21:6d:d3:cd: 96:a3:35:28:74:30:6d:ef:18:1f:2f:34:92:b8:14:27:dd:72: a4:9a:a2:f3:0a:28:62:db:3f:1b:63:ba:8f:09:4d:fa:f6:a3: 67:1a:ea:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEQ1MEMyOTU3REZBODQwQTk0MzBGQjlFRTI1RDREQ0ZB MTcxMjlDMTgwHhcNMjUwMzA0MTYzMzE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3MmI0ZS02YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFdfQ0XfSv8XcurYPO5/jrCe54dCUWA/OP+Fv/EulnOnoox3U3b/WgNRcT8S ToNH0ks6pfkga2Y/HUhAvzoIaPSPr8VRaq61Q9K/lpq/cu/3D7cTjcZ4XQxSSkZ9 ll4kn83NnIlDFU6RzpemtyWzGKOwes4PpFlvi3mpML1XK1buEIXExWdHFEQ/nVul ny9G/CeuYcSG3S5GfftyqbdBXvLhkDHrqM85QI9Rlb8/W7X1dkHPwTibfGvG/1jV 7NKsYvVMDHhslwtRG0qV7FLWzJWfHMwHs1hisWLOjLqI9I7L3EFNdxv+yQSds7/9 dZqvKJfeIdMAkdQqnISfKzYViwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLbWkVAj 10pvNQw0/5MGEVNhJGEPMB8GA1UdIwQYMBaAFNUMKVffqECpQw+57iXU3PoXEpwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82NjBFMDU4OEQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi8xUXdwVjktb1FLbEREN251SmRUYy1oY1Nu QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzFRd3BWOS1vUUtsREQ3bnVKZFRjLWhjU25CZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvNjYwRTA1ODhEMjdEMTFFRDhFOUEyNTgwQzRGOUFFMDIvMTA0NkNCOThE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARQ+QAwDQYJKoZIhvcNAQELBQADggEBABuRqVMI4Mm7PMz5 L0SX6NhkVy6b7WoS+g+6+ephBbTOwyfkoV8ZD84i6ehDNPdMDH7LKuEc9D2SoXKA 2eWqMmOme2Uv8fDXntZ8kdSsg0XkOVuA6kIBOqGAAtSFSON0coddEmw3kqqCtmAz zXaVzyppb4z+rcGD0Z1rhXilMw185sAaQGHtPlmH2Gmw7431r31rm4tcnuMjKkwW AmOYtydeHhGjII74wwJHE4xBr4Q+ee9kpXipkF3XZ1t72ttJQg8HT5vTGG7/2hxE pUYYO+r/8zumIW3TzZajNSh0MG3vGB8vNJK4FCfdcqSaovMKKGLbPxtjuo8JTfr2 o2ca6kA= -----END CERTIFICATE-----Generated at Sat Apr 5 22:17:06 2025 by rpki-client